Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
File: nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft (raw, json)
Hash identifier: pV7/zJAnbna4WDUq4neJ76E1vjtKkA/wXASN8Jn+uVM=
Subject key identifier: 0F:F7:3E:F0:B3:BE:A6:E6:94:CC:40:0E:B2:46:AB:68:72:45:7B:8A
Authority key identifier: 9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
Certificate issuer: /CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Certificate serial: 0197B745150FFCC3FF03A5E3F081A4F5365F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
Manifest number: 11D7
Signing time: Sat 28 Jun 2025 16:00:47 +0000
Manifest this update: Sat 28 Jun 2025 16:00:47 +0000
Manifest next update: Sun 29 Jun 2025 16:00:47 +0000
Files and hashes: 1: k3gz5duj9CFhYELeViKRfCBvdLQ.roa (hash: sqXEDoIPEFamPJfQ+MXgutDdyy3EAS9+6SZZLlnP/eE=)
2: nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl (hash: 2/AMJoEY71l5aYquqGr0F8mBrQL0E8a/KcCqkjMWL+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:15:0f:fc:c3:ff:03:a5:e3:f0:81:a4:f5:36:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Validity
Not Before: Jun 28 16:00:47 2025 GMT
Not After : Jun 29 16:00:47 2025 GMT
Subject: CN=0ff73ef0b3bea6e694cc400eb246ab6872457b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:58:c2:bf:41:07:e4:db:e8:c0:15:2a:b1:
74:2f:4f:55:be:de:43:b3:f0:cd:fe:67:42:3e:fe:
68:9f:2c:09:52:b8:73:19:9e:0f:b1:42:03:a2:9c:
13:08:03:d1:1e:bc:2d:ea:c8:f1:b9:9e:2f:57:48:
6e:52:07:1d:41:b0:31:54:f8:14:a5:8c:89:a2:b0:
65:48:ea:5b:23:1f:72:25:2a:e4:dc:e4:17:f8:1a:
81:3d:54:3e:4b:04:2f:cc:68:db:08:c7:09:79:dd:
d5:34:f9:40:e5:23:61:00:8f:3f:8d:97:c7:da:e5:
d0:63:34:04:5d:bd:bc:e1:0d:f2:62:4c:af:3f:37:
64:28:fc:7a:be:1b:1d:f3:33:84:fe:e1:e0:95:c7:
03:0c:b4:f4:45:dc:55:97:32:f3:b7:d4:b0:12:04:
1e:87:b6:5c:ee:67:fb:96:3d:3b:e6:a8:05:69:b6:
c3:bf:61:c8:ae:c0:f3:28:6f:78:05:73:05:34:f6:
cd:2f:a6:9a:64:22:2d:af:13:de:ca:9c:ef:b5:4a:
16:c0:fa:98:8d:25:a8:a3:3e:19:46:49:da:aa:8c:
f3:50:82:51:b6:fb:a8:3c:fe:8c:7a:01:90:b7:12:
bb:3a:28:3f:67:97:f9:6e:8c:f5:6a:d5:bf:8a:fd:
26:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F7:3E:F0:B3:BE:A6:E6:94:CC:40:0E:B2:46:AB:68:72:45:7B:8A
X509v3 Authority Key Identifier:
keyid:9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e4:a2:b2:fd:39:7e:17:ef:c6:77:09:5d:3d:b9:0e:d1:f2:
a5:51:76:69:10:71:c4:bf:89:51:c9:b5:85:f1:f4:5e:53:65:
a4:ca:87:34:87:2a:02:ea:11:7a:e2:ad:cd:f2:f1:bc:52:c8:
de:66:f0:39:60:c7:a6:de:22:98:57:03:56:89:5c:79:88:5f:
d0:2d:c6:88:ff:f8:ec:14:33:ed:a6:ac:18:21:c7:9f:46:a3:
5c:78:cb:75:e8:a9:1c:b5:46:04:bd:b5:ad:d4:f9:e9:a2:63:
b5:66:1a:11:61:6d:78:85:c2:43:89:5e:b0:15:02:0f:12:33:
1f:7b:39:4f:f0:d1:34:9f:9d:63:45:8b:0b:e5:33:97:1f:97:
78:39:8f:fd:c1:1c:5d:b2:ce:32:a0:03:b8:2c:a7:e5:22:0e:
c3:61:d3:e4:0c:76:d9:fa:28:50:10:12:38:5d:62:94:43:bb:
2a:a4:f2:5b:16:5a:60:9f:c2:49:c6:d0:39:b0:25:fc:99:59:
74:f2:ab:f9:ad:8e:7e:a7:d2:08:ae:df:36:13:d8:cb:42:2f:
04:2a:8b:21:1b:27:37:92:ed:a0:95:b8:30:0b:e3:e9:30:d4:
9b:29:64:21:a3:16:76:cb:b2:d9:96:80:b8:6a:05:31:a5:4e:
a6:a9:c2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:27 2025 by rpki-client